CVE-2024-50134

drm/vboxvideo: Replace fake VLA at end of vbva_mouse_pointer_shape with real VLA

Description

In the Linux kernel, the following vulnerability has been resolved: drm/vboxvideo: Replace fake VLA at end of vbva_mouse_pointer_shape with real VLA Replace the fake VLA at end of the vbva_mouse_pointer_shape shape with a real VLA to fix a "memcpy: detected field-spanning write error" warning: [ 13.319813] memcpy: detected field-spanning write (size 16896) of single field "p->data" at drivers/gpu/drm/vboxvideo/hgsmi_base.c:154 (size 4) [ 13.319841] WARNING: CPU: 0 PID: 1105 at drivers/gpu/drm/vboxvideo/hgsmi_base.c:154 hgsmi_update_pointer_shape+0x192/0x1c0 [vboxvideo] [ 13.320038] Call Trace: [ 13.320173] hgsmi_update_pointer_shape [vboxvideo] [ 13.320184] vbox_cursor_atomic_update [vboxvideo] Note as mentioned in the added comment it seems the original length calculation for the allocated and send hgsmi buffer is 4 bytes too large. Changing this is not the goal of this patch, so this behavior is kept.

5.5
CVSS
Severity: Medium
CVSS 3.1 •
EPSS 0.03%
Affected: Linux Linux
Affected: Linux Linux
Published at:
Updated at:

References

Link Tags
https://git.kernel.org/stable/c/02c86c5d5ef4bbba17d38859c74872825f536617
https://git.kernel.org/stable/c/75f828e944dacaac8870418461d3d48a1ecf2331
https://git.kernel.org/stable/c/34a422274b693507025a7db21519865d1862afcb patch
https://git.kernel.org/stable/c/7458a6cdaebb3dc59af8578ee354fae78a154c4a patch
https://git.kernel.org/stable/c/9eb32bd23bbcec44bcbef27b7f282b7a7f3d0391 patch
https://git.kernel.org/stable/c/fae9dc12c61ce23cf29d09824a741b7b1ff8f01f patch
https://git.kernel.org/stable/c/d92b90f9a54d9300a6e883258e79f36dab53bfae patch

Frequently Asked Questions

What is the severity of CVE-2024-50134?
CVE-2024-50134 has been scored as a medium severity vulnerability.
How to fix CVE-2024-50134?
To fix CVE-2024-50134, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2024-50134 being actively exploited in the wild?
As for now, there are no information to confirm that CVE-2024-50134 is being actively exploited. According to its EPSS score, there is a ~0% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2024-50134?
CVE-2024-50134 affects Linux Linux, Linux Linux.
This platform uses data from the NIST NVD, MITRE CVE, MITRE CWE, First.org and CISA KEV but is not endorsed or certified by these entities. CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site.
© 2025 Under My Watch. All Rights Reserved.